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SPECIFICATION 

Electronic Version 1 .2.8 
Stylesheet Version 1 .0 

[SOFTWARE DELIVERY DEVICE 
AND METHOD FOR PROVIDING 
SOFTWARE COPY PROTECTION] 

Background of Invention 

[0001] 1 . Field of the Invention 

[0002] The present invention relates to a software delivery device and related method, 
and more specifically, to a software delivery device and related method that provides 
copy protection to software delivered. 

[0003] 2. Description of the Prior Art 

[0004] Providing adequate copy protection to software is an ongoing problem in the 
computer software industry. In the past, pirated software had limited means of 
distribution. However, with the advent of the Internet, it has become easy for 
unscrupulous individuals to find, install, and use Illegal copies of almost any 
commercially available program. This problem results in a complicated financial 
situation that eventually ends in lost revenue for the publishers of the program being 
recouped by the cost of the program being increased. Additionally, quality of 
programs produced is influenced as the publishers and vendors of the program can 
never be certain who is actually using a copy of the program, and thus cannot 
accurately study their end user market. Besides everyday software such as word 
processors and graphics applications, inadequate copy protection allows complex 
scientific, engineering, and encryption programs to be used by unauthorized parties. 
Moreover, users of unauthorized software include users from all sectors - personal, 
commercial, and industrial. 

[0005] Currently, there is a wide array of prior art methods of providing software copy 
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protection. One popular method involves including a code generating and prompting 
routine in the program to be protected. When a user executes the program, the user is 
prompted to enter a unique key code that is then validated against a code generated 
by the program. While this method is quite simple, it can easily be defeated. For 
instance, the code generation routine of the program can be reverse engineered, and 
a small key generation utility can be written to generate a key for a given copy of the 
program. Furthermore, the prompting routine of the program can be disabled by a 
person of sufficient skill having access to a suitable decompiler. 

[0006] Another common prior art method involves providing a program on a CD that 

references codes stored on the CD. These codes are not included in the installed copy 
of the program and must be read from the CD at the time of execution. This method 
can also be easily sidestepped by simply copying the CD. Moreover, this method 
causes inconvenience and annoyance to legitimate users of the program if the CD 
becomes scratched or otherwise damaged. 

[0007] A third common prior art method provides a special hardware device as a means 
\ copy protection. Known as a hardware lock pr dongle, this device is connected to a 

port of a computer and is referenced by a program during execution. The hardware 
lock or dongle is popularly used in conjunction with commercial and industrial 
applications or distributions. As shown in Fig.l , the hardware lock 10 comprises a 
connection port 12. The connection port 1 2, typically a standard D-Type 25 Pin 
parallel port, can be connected to a corresponding connection port of a computer. 

[0008] Please refer to Fig. 2, which shows the hardware lock 10 connected to a computer 
20 through a connection port 22. The hardware lock 10 further comprises a reference 
table 14 that is essentially an IC chip look-up table. When the reference table 14 is 
sent a first value, it returns a second value. The computer 20 also includes a 
processor 24 for executing a program 26. The program 26 Includes references to the 
reference table 1 4 of the hardware lock 1 0 and can terminate its own execution if any 
first value sent to the reference table 14 returns an invalid second value. 

[0009] When the program 26 is executed, program instructions control the processor 24 
to send first values to the reference table 1 4 and compare returned second values 
with expected second values. The program 26 also controls the processor 24 to halt 
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execution of the program 26 if any of the returned second values do not agree with 
expected second values. Hence, if the program 26 is to be executed the hardware lock 
10 must be connected to the connection port 22 of the computer 20. 



program 26 is distributed on a CD or floppy disk and stored in the computer 20, on a 
hard drive for example, and can therefore be readily copied, decompiled, and 
modified to not reference the hardware lock 10, thus effectively removing the copy 
protection provided. Second, the IC chip reference table 14 does not actually deliver 
the program 26 and is consequently too expensive to justify its narrow purpose. 
Third, the connection port 22 to which the hardware lock 10 is attached may become 
unusable by other devices. 

[001 1] Therefore, the prior art methods and devices for providing software copy 
protection are too easily disabled, inconvenient, and too expensive. 

Summary of Invention 

[001 2] It is therefore a primary objective of the claimed invention to provide a software 
delivery device for providing software copy protection to solve the above-described 
problems in the prior art. 

[001 3] Briefly summarized the claimed invention includes a connection port for 



connecting to a computer, a microcontroller, a flash memory comprising a boot 
sector, and a program stored in the flash memory. The microcontroller contains an 
authentication program for booting the computer from the boot sector and is capable 
of controlling communication between the connection port and the flash memory. 



[0010] 



Nevertheless, the hardware lock 1 0 has significant shortcomings. First, the 



[0014] 



According to the claimed Invention, the microcontroller blocks communication 
between the computer and the flash memory when the computer is not booted from 



the boot sector. 



[0015] 



According to the claimed invention, the authentication program includes 
instructions that instruct the microcontroller to allow access to the flash memory by 
the computer, and the authentication program is stored in the ROM of the 
microcontroller to be executed when the computer is booted from the software 
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delivery device. 

[0016] It is an advantage of the claimed invention that the program provided in the flash 
memory cannot be accessed by the computer if the computer Is not booted from the 
boot sector. 

[001 7] It is a further advantage of the claimed invention that the flash memory and 

microcontroller provide both a way to deliver the program to an end user and a way to 
prevent unauthorized copies of the program from being generated. 

[0018] These and other objectives of the claimed invention will no doubt become obvious 
to those of ordinary skill in the art after reading the following detailed description of 
the preferred embodiment that is illustrated in the various figures and drawings. 

Brief Description of Drawings 

[001 9] FIg.l is a perspective view of a prior art hardware lock. 

[0020] Fig. 2 is a block diagram of the hardware lock of Fig.1 connected to a computer. 

[0021] Fig. 3 is a perspective view of a soiftware delivery device according to the preferred 
embodiment of the present invention. 

[0022] Fig. 4 is a block diagram of the software delivery device shown in Fig, 3 connected 
to a computer. 

Detailed Description 

[0023] Please refer to Fig. 3, which shows a software delivery device 30 according to the 
preferred embodiment of the present invention. The software delivery device 30 
comprises a body 32. a connection port 34, and a removable protective cover 36. The 
body 32 contains components that provide functionality to the software delivery 
device 30. The connection port 34 is a standard 40-pln male integrated drive 
electronics (IDE) port that is common in the computer industry, but could also be 
another type of computer interface port, such as small computer system interface 
(SCSI) or universal serial bus (USB) port, as long as the software delivery device 30 is 
bootable. The protective cover 36 can be removed to allow the connection port 34 to 
be connected a computer through a typical IDE ribbon cable. 
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[0024] Fig. 4 is a block diagram of the software delivery device 30 connected to a 

computer 50. The connection port 34 is connected to a corresponding connection 
port 52 on the computer 50. The computer 50 comprises a processor 54 for executing 
programs. Naturally, the computer 50 further comprises additional hardware, such as 
hardware to accept user input and display output, however this is well known in the 
art and will not be described In further detail. The software delivery device 30 further 
comprises a microcontroller 36 having an internal logic and a read only memory 
(ROM) 38, and a flash memory 40. The microcontroller 36 controls the flow of data 
between the flash memory 40 and the connection port 34. Stored in the flash memory 
40 is a software program 44 to be delivered to and used by an end user on the 
computer 50. 

[0025] The microcontroller 36, with an authentication program 33 stored in the ROM 38 
thereof, can accept, reject, and execute instructions from the connection port 34, 
which in practical application is the same as accepting, rejecting, and executing 
instructions from the processor 54. The microcontroller 36 can limit the scope of the 
instructions, and accept or reject instructions based on logic to control the flow of 
data between the flash memory 40 and the connection port 34. Rather than allowing 
direct access to the flash memory 40, the microcontroller 36 is programmed to reject 
read commands from the processor 54 addressed to a particular region of the flash 
memory 40. This ensures that a functional copy of the program 44 cannot be copied 
from the flash memory 40. This also ensures that the program 44 cannot be entirely 
executed by the processor 54 alone. The logic of the microcontroller 36 can also be 
controlled by instructions from the processor 54 to allow or further disallow reading 
and writing to different regions of the flash memory 40. 

[0026] jj^g fi^gpj memory 40 is organized into a file system 42, much the same way a 
typical hard disk is. For example, if the computer 50 is using a Microsoft Windows 
operating system the FAT32 or NTFS file system is used. Of course, the file system 42 
would comply with other standards if the computer 50 were using other operating 
systems. The file system 42 of the flash memory 40 includes a main storage area 42a 
and a boot sector 42b. For explanatory purposes, the program 44 is considered as a 
single application. The present invention does not preclude the program 44 from 
being a plurality of programs as long as they are private programs to be protected 
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from any unauthorized copying according to the present invention. 

[0027] The program 44 can also include additional references to the microcontroller 36 

that are stored in the main storage area 42a of the flash memory 40. These references 
can take the form of specialized commands, encrypted information, or similar 
references and instruct the processor 54 to halt execution of the program 44 if the 
microcontroller 36 is no longer attached to the computer 54. The purpose of these 
additional references is to ensure that the microcontroller 36 is not removed from the 
computer 50 during execution of the program 44. 

[0028] Normally, the microcontroller 36 prevents access to the main storage area 42a of 
the flash memory 40. For instance, if the software delivery device 30 is connected to 
the computer 50 after the computer 50 has booted, the main storage area 42a of the 
flash memory 40 is inaccessible and read or write errors may occur. The boot sector 
42b is normally accessible, but inherently protected from direct user access though 
the computer 50 by the authentication program 33. 

[0029] The operation of the present invention according to the preferred embodiment is 
summarized as follows. First, the software delivery device 30 is connected to the 
computer 50. Second, the computer 50 is turned on. During startup, the BIOS of the 
computer searches for bootable devices and tries to read sector 0 of the flash memory 
40 of the bootable device 30. Instead of returning boot sector 0 of the flash memory 
to BIOS, the authentication program 33 returns a virtual boot sector to the computer. 
The software delivery device 30 appears to the computer 50 as a bootable device 
having a boot sector. The authentication program 33 of the microcontroller 36 is such 
that it enables the computer 50 to boot from the virtual boot sector, but prevents it 
from gaining access to the protected program 44 in the flash memory 40. Third, when 
the user chooses to boot the computer 50 from the device 30, the authentication 
program 33 grants access to boot sectors of the flash memory 40 and normal boot 
sequences begin. Finally, the authentication program 33 instructs the microcontroller 
36 to allow access to the protected program 44 and the main storage area 42a of the 
flash memory 40 - in effect unlocking the flash memory 40. 

[0030] user simply has to connect the connection port 34 to the computer 50 and 

boot the computer 50 as usual. In fact, from the user"s perspective, the present 
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invention software delivery device 30 is used in much the same way as a CD, floppy 
disk, or hard disk. However, the inventive software delivery device 30 prevents access 
to the program 44 unless the computer 50 is booted from the software delivery device 
30. 

[0031] Generally, the design of the program 44 and nature of the Included instructions to 
the microcontroller 36, the logic of the microcontroller 36 are both factors that 
determine the strength of the copy protection provided by the present invention 
software delivery device 30. At the time of manufacture, the exact application of the 
present invention software delivery device 30 must be addressed to fine-tune the 
above factors to maximize the copy protection afforded. 

[0032] In contrast to the prior art, the present invention includes an authentication 

program stored in a microcontroller that is executed by the computer during startup. 
Instructions in the program control the microcontroller to allow access to the flash 
memory to effectively unlock the entire software program stored therein. The present 
invention provides superior copy protection security to software over the prior art. The 
present invention further allows software to be delivered and protected by a single 
device in a way that is convenient to an end user. 

[0033] Those skilled in the art will readily observe that numerous modifications and 

alterations of the device may be made while retaining the teachings of the invention. 
Accordingly, the above disclosure should be construed as limited only by the metes 
and bounds of the appended claims. 
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